VDB

GCVE-110-CERTCC-2002-798611

GCVE-110-CERTCC-2002-798611
Advisory Published
Vulnetix · Advisory published February 6, 2002
Oracle 9i Application Servers are vulnerable to a cross-site scripting vulnerability. The server may inadvertently include malicious HTML tags or script(JavaScript, VBScript, Java, etc.) in a dynamically generated page based on unvalidated input from untrustworthy sources. This can be a problem when a web server does not adequately ensure that generated pages are properly encoded to prevent unintended execution of scripts, and when input is not validated to prevent malicious HTML from being presented to the user.

Risk Scores

certcc-cam
certcc-cam
impact15population15exploitation0widely_known20score_current4.21875ease_of_exploitation2

Browse GCVE Records

72,337 records in the GCVE database · Updated July 14, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›